►
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
B
A
Yeah
I
just
see
agenda.
A
A
So
could
we
go
into
open
discussion.
C
Hi
folks,
hello,
yeah
continuing
this
discussion
on
that
I.
Add
on
slack
so
looks
like
this
current
change.
That
is
their
for
their
workload,
identity
on
it's
too
big
John.
If
you
can
just
please
open
that
PR
from
fabse
or
how.
D
B
E
C
Oh
okay,
so
so
I
have
added
like
a
couple
of
comments
on
this
PR,
and
it
has
seen
from
this
summary
that
I've
selected
it
uses
user
assigned
identity
for
all
the
templates,
because,
while
I
was
doing
this
PR
sometime
back
cloud
provider
as
I
did
not
support
identity,
and
that
meant
that
we
have
to
use
user
assigned
identity
for
that.
C
C
So
this
is
what
I've
done
so
far
in
this
PR
but
looks
like
it's
good
to
kind
of
get
into
a
smaller
scope
where
we
just
added
PR.
If
you
see
this
commit
the
top
four
commits
that
just
enables
virtual
identity
capability
into
pansy,
and
then
it
also
adds
in
E2
test
that
specifically
creates
a
management
cluster
based
on
Virtual
identity.
C
C
If
there
are
any
issues
and
feedback
from
people,
and
then
we
could
kind
of
in
subsequent
PR
I
can
raise
this
and
change
to
be
using
workload
identity
as
in
default
on
all
the
CI
test,
and
while
we
do
that
there
was
also
a
discussion
around
how
do
we
leverage
cap,
Z
or
Cloud
identity
with
cloud
provider
as
or
and
I
have
been
trying
to
think
on
that
I
did
some
experiments
yesterday,
but
that
was
unsuccessful,
so
I'll
be
able
to
get
back
onto
that
by
next
week.
C
B
And
yeah,
so,
first
of
all,
thanks
for
working
on
this,
this
is
a
really
big
effort
and
really
important.
So
thank
you.
I
think
I'm
with
you
that
smaller
changes
are
better
and
they're,
going
to
be
a
lot
easier
for
reviewers
to
review
and
understand
and
I
think
that's
going
to
help
us
in
the
end
overall
get
this
investor
I!
B
Think
first
thing:
first,
we
need
to
merge
a
proposal,
because
this
is
the
POC
implementation
for
a
proposal
that
still
hasn't
merged,
so
yeah
they're,
saying
we
need
to
do
is
merge
The
Proposal.
Then,
if
we
can
add
like
a
test
that
demonstrates
how
this
works
without
changing
any
of
the
like
defaults
or
templates.
That
would
be
really
great,
because
then
we
can
get
some
mileage
on
it
and
then
we
can
move
towards
doing
what
you
said
of
like
turning
it
on
everywhere.
B
The
tricky
thing
with
forcing
user
identity
on,
like
all
the
all
the
users,
basically
yeah,
because
that's
the
only
thing
that
works
is
that
as
much
as
it's
you
know
recommended,
and
we
want
users
to
be
using
managed
identity.
It's
really
tricky
because,
in
order
to
have
a
user
assigned
identity
that
has
the
correct
permissions,
you
need
to
assign
role
assignments,
and
in
order
to
do
that,
you
need
to
have
very
elevated
permissions
in
Azure.
B
So
you
need
to
be
an
admin
role,
which
means
users
wouldn't
be
able
to
test
this
out
anymore
or
like
use
cap
Z
to
quickly
deploy
a
cluster
unless
they
get
their
admin
to
Mint
a
new
role
assignment
for
them,
which
might
you
know,
make
the
barrier
of
Entry
a
bit
higher
and
surprise
some
folks.
So
if
we
can
find
a
way
to
not
have
that,
be
you
know
a
forcing
function,
I
think
that
would
be
good
and
the
breaking
down
PRS
and
starting
to
get
things
in
bit
by
bit.
B
I
think
also
helps
us.
You
know
get
some
time
to
figure
out
that
part,
but
still
start.
You
know
evaluating
getting
some
test
signal.
Etc,
yeah,
I,
don't
know
if
you
saw
the
ASO
issue,
but
John
put
together
like
an
issue
list
of
tasks
that
kind
of
breaks
it
down
and
I
think
makes
it
really
easy
for
everyone
to
follow.
B
You
know
what's
going
on
when
is
that
going
to
be
done
in
what
order
so
I
don't
know
we're
kind
of
late
in
the
process
for
workload
identity
now,
but
for
big
tasks?
I
think
we
should
consider
doing
more
of
that
in
the
future.
C
Sure
yeah
I
can
still
go
ahead
and
like
file
a
couple
of
issues
related
to
this,
but
I
think
if
we
are
in
agreement,
you
get
into
the
first
smaller
PR
and
just
remove
all
this
commit
I
mean
it
will
be
easy
for
people
to
educate
it
and
then
yeah
definitely
emergency
proposal
first
before
getting
into
this
one
makes
sense.
C
F
C
C
I
mean
the
kind
cluster
configuration
changes
that
kind
of
helps
you
mount
okay
in
public
and
privacy,
on
your
notes
on
your
time,
node,
and
then
you
have
to
kind
of
register
that
into
Azure
portal,
if
you,
if
you,
if
you've,
seen
Azure
workload,
identity
docs,
if
you
Google
that
out
in
the
docs
that's
mentioned
how
you
can
get
better
on
it,
and
obviously
this
PR
will
when
this
VR
gets
into
a
state
of
being
miserable,
then
just
there
will
be
a
dock
where
it
outlines.
C
F
B
I
can
answer
that,
so
actually
it
makes
it
that's
that's
why
we're
doing
this
so
workload.
Identity
now
supports
Federated
identity,
which
means
you
can
have
an
Azure
managed
identity
on
a
non-azure,
VM
or
cluster,
which
is
one
of
the
main
advancements
of
this
doing
this
proposal.
B
So
you
can
now
have
like
your
user
assigned
identity
used
from
within
a
kind
cluster
or
an
AWS
cluster
or
anything,
and
it
works
through
service
accounts.
So
the
thing
that
was
explaining
that
you
need
to
do
a
little
extra
setup
is
on
the
can
cluster.
You
need
to
set
up
the
service
account
so
that
it
has
it
can.
It
knows
where
to
get
the
like
the
oidc
issuer,
and
it
knows
where
to
get
the
token.
So
that's
why
it's.
B
C
C
Cool
does
anything
have.
B
For
sure
yeah,
are
you
still
planning
to
do
a
walk
through.
B
Okay,
today.
B
Oh
yeah,
up
to
you
I,
think
either
works,
but
yeah
would
be
great.
C
Or
or
maybe
do
one
thing,
let
me
clean
this
up
so
that
you
know
I'll
remove
all
of
this
temporary
princess
and
all
these
things,
and
then
you
can
do
it
like,
maybe
tomorrow
it
is
tomorrow,
work
for
everyone.
B
C
C
Exam
I
think
that
is.
A
All
right
can
everybody
see
cool,
yeah,
I
guess
I
had
doing
another
topic,
I
was
going
to
say
the
out
of
tree
cloud
provider.
Support
is
coming
so
I've
merged
a
PR
to
add
the
add-on
provider
to
Cluster
CTL
and
I've,
been
testing
it
out
on
cap
C
to
install
cloud
provider
Azure
and
so
far
it's
been
working
pretty
well.
So
we
just
need
to
wait
for
the
new
version
of
Cappy
to
release
and
then
we
can
officially
have
add
a
preview
cloud
provider.
A
A
If
not
I
guess
we
could
look
at
some
of
the
Milestone
stuff.
If
you
don't
want
to
stick
around
for
that,
all
right
going
once
going
twice.
E
Yeah
just
random
thing:
can
you
make
the
text
slightly
bigger
yeah.
A
E
A
All
right,
I
guess
I'll
start
from
the
top
add
support
and
documentation
using
Azure
cni
with
cap
C
how's
that
looking
Cecile.
G
A
Okay
sounds
good
Azure
machine
template
reconcile
occasionally
fails
to
find
Azure
identity.
B
This
one
is
still
unassigned
and
help
wanted
it.
When
you
look
at
the
list,
you
can
see
on
the
left
or
sorry
on
the
right
hand,
side
who's
assigned
that's
the
little
icon.
This
is
the
one
above
it's
now
us
this
one
doesn't
have
an
assignee
I
would
say
if
we
don't
have
an
assignee
by
Midway,
we
should
probably
kick
it
out
of
the
Milestone.
Is
that
one
something
that
would
be
interesting
to
look
at
post
worker
with
identity,
Maybe.
C
C
A
Okay,
cool
looks
like
migrate
from
aad
pod
identity.
It
says
you
are
we
good
to
keep
this
on
the
milestone.
A
Azure
machine
for
ux
Matt-
that
was
this
how's
it
going
on
this.
Oh,
is
that.
B
C
A
Yeah
workload,
identity,
yeah,
that's
probably
probably
the
same
thing:
audit
AKs
managed
cluster
docs,
that's
Jack
and
John.
H
Yeah
I've
been
I've
been
looking
into
that
one
and
I
do
have
a
PR
open
that,
oh
maybe
ping
more
folks
for
review
on
yeah
that's
in
progress
and
should
be
good
to
keep
the
Milestone
yeah.
A
Yeah,
the
ma
stems
too
in
July
11th,
so
yeah
I
think
I
think
we
have
a
good
amount
of
time
for
that
WIP
Nawaz
docs
on
using
Azure
cni.
This
is
unassigned.
G
Oh
yeah
Jonathan,
that's
a
draft
PR
I
had
opened
up,
it's
still
working
on
it.
It's
related
to
Azure,
cni
docs,
and
this
one
I
think
is
e2e.
I
mean
the
same
thing.
So
it's
split
into
three
parts
and
would
still
like
to
keep
it
in
third
place.
Okay,.
A
Cool
thanks
support
user
identity
in
capsity
manage
AKs
cluster
Jack.
A
I
You
saying
something:
sorry
sorry
I
was
looking
for
mute
in
the
various
Windows.
Let's
keep
in
the
milestone
for
now,
I
haven't
made
any
further
progress,
it's
sort
of
in
a
almost
functional
state.
So
oh.
A
It
sounds
good.
What
about
the
next
One
support,
cubelet
user
managed
identity
on
aksbmss
pool.
I
That
I
think
is
well
not
one
of
those
isn't.
Oh,
those
are
both
issues
I
see,
so
let's
keep
those
those
both
in
the
Milestone.
It's
unclear
to
me
how
there's
like
a
few
different
dimensions
to
to
user
identity
for
AKs
and
I've
got
a
PR
in
here
somewhere
that
tackles
at
least
one
of
those
Dimensions,
but
I'm
not
sure
if
it
tackles
the
other.
A
Can
I'll
leave
it,
as
is
next
one
looks
like
Noah's
ad
support
for
confidential
VMS.
G
A
G
Yeah
yeah
I
think
it's
waiting
on
approval
because
we
are
waiting
for
another
dependent
PR
on
image
Builder
once
that
Moses
and
then
we
can
merge
this
PR
on
cap
C.
A
Cool
yeah
Cecil
scaling
up
lots
of
nodes
at
once
causes
Docker
limits
for
Calico
pods.
B
Yeah
I
think
this
time
the
chair
is
actually
ready
for
a
review.
I
need
to
go
back
and
check
how
the
tests
are
looking
post
this
morning,
but
I'll
mark
it
not
work
in
progress
anymore.
Once
it's
ready,
yeah.
A
So
it's
this
MCR
registry,
yep
cool.
G
That's
the
same
split
out
task.
This
one
addresses
directly.
The
e2e
test
so
would
still
like
would
still
like
to
keep
it
in
the
release.
G
A
Yeah
I
think
you
have
the
do
not
merge
hold
label
on
there
by
the
way.
So,
if
you
are
ready
to
go,
I'd
say
do
like
the
slash
hold
cancel,
because
you
need
to
remove
that
before
the
bot
will
emerge.
It
I
know
I've
forgotten
to
do
that,
wondering
like
hey.
Why
is
it
not
merged?
So
when
you're
ready
just
remember
to
drop
that
tag,
and
we
should
be
good
to
go?
A
Okay,
CCM
is
in
Crash
that
loop
back
off
on
Flat
Car
flavor.
This
is
I,
don't
know
who
this
is.
A
Yeah
I
wonder
if,
like
we
should
make
it
like
by
PR
or
by
issues
bottom,
but
we'll
keep
moving
WIP
AKs
control,
plane
user
assigned
identity,
Jack
how's
how's
this
WIP
going.
I
A
Okay,
no
problem
async,
there's
I,
guess
3s
DK,
V2
framework
issues
from
that
do
we
it
says
priority
important
soon.
So
do
we
want
to
leave
it
off.
A
Okay,
we
got
three
ASO.
A
B
Yeah,
that's
I
almost
dropped.
My
coffee,
that's
Lily
and
I
are
working
on
that.
It's
in
progress
jumping
through
some
hoops
getting
some
pipelines
set
up
to
publish
extension
internally,
but
I
think
it's
good
to
keep
for
now
in
the
mouth
soon.
Hopefully
we
have
it
by
then.
A
B
Yeah,
the
extension
should
be
the
last
less
blocker
for
I'm
64.
yeah.
A
B
I,
don't
know
why
that's
oh
I
offered
that
issue.
Okay,
I!
Guess
that's
just
going
with
the
confidential
BM
PR!
Probably
although
it's
unclear,
why
there's
no
PR
or
assignee
on
it
so
I'll
go
check.
A
B
I
think
it's
probably
the
pr
that
we
looked
at
earlier
confidential,
VMS,
okay,.
D
A
H
B
C
This
one
is
I
think
there
has
been
a
recent
STD,
video
Challenge
and
while
I
was
testing,
I
were
killed,
identity,
pra
I
figured
out
that
you
know
somehow.
That
particular
service
is
not.
You
know
kind
of
reading,
achievement,
ID
and
client
writing
from
what
was
Boston
as
a
professor
identity.
C
C
A
Yeah
I'm
guessing
that
since
Matt
said
master
and
Vu
1.10
two
days
ago,
we
can
probably
leave
it
since
he
added
it
himself
by
Matt.
So
I'll
switch
GPU
tests.
B
A
B
B
However,
we've
been
unsuccessful
so
far
trying
to
get
caught
up
within
use
cues
in
our
Valencia
like
option
Pro
subscription,
because
there's
a
really
limited
capacity
for
these
types
of
skews
right
now
and
there's
really
high
demand,
so
we're
still
trying.
Hopefully
we
can
get
it
before
the
deadline,
if
not
we'll
have
to
disable
the
test
and
figure
out
something
else.
A
Cool
cool,
I'll
I'll
leave
this
on
the
milestone
for
now,
then.
Last
but
not
least,
security
rules
doesn't
get
cleaned
up
on
Azure
side
assigned
to
Willy
added
this.
A
E
A
Awesome
sounds
good
all
right,
the
I
guess
that'll
do
it.
We
are
52
complete
with
31
close
PR,
so
I
think
we're
we're
we're
making
good
progress.
Okay,
going
back
to
the
agenda,
do
we
have
to
add
anything
for
the
next
office
hours,
any
agenda
items.
B
I
think
that
one's
just
a
reminder
to
copy
the
template
and
create
the
entry
for
next
time,
so
people
can
add
in
stuff
during
the
week
if
they
have
anything.
Okay,.